Forensics

SimpleImager V4.3 : A Step-by-Step Guide To Efficient System Imaging

SimpleImager V4.3, your go-to tool for streamlined system imaging and data acquisition. Designed to simplify the process of capturing essential system information, this guide will walk you through each step to ensure successful imaging.

Whether you’re backing up data or conducting system diagnostics, SimpleImager V4.3 is equipped to handle your needs efficiently.

This script has been created to ease out the process of Acquisition Points to be considered before running the script:

1. Account used to log in to the machine should be Administrator account
2. Command Prompt (CMD) should be run as Administrator
3. USB ports should be enabled on the system to perform Imaging into an external drive or Mapped network drive
4. Run the D-Acquisition script 
5. Once Acquisition complete and message is displayed close the script and dismount the drive carefully
6. When the script is executed it will collect information of the host device on which the script is executed.
7. Information such as the serial number of the host, serial number of the hard drive, details of peripherals connected to the host etc.. The collected information is available in DeviceInfo.txt
8. The script also collects information on the BitLocker Key if the host drive is encrypted with bitlocker

To view ‘DeviceInfo.txt’ information properly, in Notepad++ run Replace “\x00” with “”(blank) and select search mode as Extended, this will show the contents in a proper manner without the Null character

The command to execute the script is as follows:

D-Acquisition.bat <"Drive letter where the image is to be collected OR the path where you want to store the image">

Example

D-Acquisition.bat Z:

D-Acquisition.bat D:\Work\Test_Image
Varshini

Tamil has a great interest in the fields of Cyber Security, OSINT, and CTF projects. Currently, he is deeply involved in researching and publishing various security tools with Kali Linux Tutorials, which is quite fascinating.

Recent Posts

ModTask – Task Scheduler Attack Tool

ModTask is an advanced C# tool designed for red teaming operations, focusing on manipulating scheduled…

22 hours ago

HellBunny : Advanced Shellcode Loader For EDR Evasio

HellBunny is a malleable shellcode loader written in C and Assembly utilizing direct and indirect…

22 hours ago

SharpRedirect : A Lightweight And Efficient .NET-Based TCP Redirector

SharpRedirect is a simple .NET Framework-based redirector from a specified local port to a destination…

22 hours ago

Flyphish : Mastering Cloud-Based Phishing Simulations For Security Assessments

Flyphish is an Ansible playbook allowing cyber security consultants to deploy a phishing server in…

2 days ago

DeLink : Decrypting D-Link Firmware Across Devices With A Rust-Based Library

A crypto library to decrypt various encrypted D-Link firmware images. Confirmed to work on the…

2 days ago

LLM Lies : Hallucinations Are Not Bugs, But Features As Adversarial Examples

LLMs (e.g., GPT-3.5, LLaMA, and PaLM) suffer from hallucination—fabricating non-existent facts to cheat users without…

2 days ago